CVE-2024-52615

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 21, 2024

CWE ID 330

Summary

CVE-2024-52615 is a vulnerability affecting the Avahi-daemon software. It was discovered that this application utilizes fixed source ports for wide-area DNS queries, making it easier for attackers to inject malicious DNS responses. This issue can simplify attacks, potentially leading to serious consequences such as redirecting network traffic, conducting phishing attacks, or executing malware. Organizations using Avahi-daemon are advised to apply the necessary patches or updates to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0j3xc5
https://www.cve.org/CVERecord?id=CVE-2024-52615
https://nvd.nist.gov/vuln/detail/CVE-2024-52615

Back to Vulnerability Database

CVE-2024-52615

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations